Описание
An integer overflow vulnerability in the Skia library when allocating memory for edge builders on some systems with at least 8 GB of RAM. This results in the use of uninitialized memory, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.6, Firefox ESR < 52.6, and Firefox < 58.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 58.0+build6-0ubuntu0.17.10.1 |
| bionic | released | 59.0.1+build1-0ubuntu1 |
| devel | released | 59.0.1+build1-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [58.0+build6-0ubuntu0.14.04.1]] |
| precise/esm | DNE | |
| trusty | released | 58.0+build6-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [58.0+build6-0ubuntu0.14.04.1] |
| upstream | released | 58.0 |
| xenial | released | 58.0+build6-0ubuntu0.16.04.1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 1:52.6.0+build1-0ubuntu0.17.10.1 |
| bionic | released | 1:52.6.0+build1-0ubuntu1 |
| devel | released | 1:52.6.0+build1-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1:52.6.0+build1-0ubuntu0.14.04.1]] |
| precise/esm | DNE | |
| trusty | released | 1:52.6.0+build1-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [1:52.6.0+build1-0ubuntu0.14.04.1] |
| upstream | released | 52.6.0 |
| xenial | released | 1:52.6.0+build1-0ubuntu0.16.04.1 |
Показывать по
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
An integer overflow vulnerability in the Skia library when allocating memory for edge builders on some systems with at least 8 GB of RAM. This results in the use of uninitialized memory, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.6, Firefox ESR < 52.6, and Firefox < 58.
An integer overflow vulnerability in the Skia library when allocating memory for edge builders on some systems with at least 8 GB of RAM. This results in the use of uninitialized memory, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.6, Firefox ESR < 52.6, and Firefox < 58.
An integer overflow vulnerability in the Skia library when allocating ...
An integer overflow vulnerability in the Skia library when allocating memory for edge builders on some systems with at least 8 GB of RAM. This results in the use of uninitialized memory, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.6, Firefox ESR < 52.6, and Firefox < 58.
Уязвимость библиотеки Skia браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3